Recently Updated Pages
Script Any Arbitrary Backend
The "script" backend type is simply a script the agent can execute that takes a fixed set of argu...
AWS (EC2) Security Groups
Knocknoc can easily connect to AWS using common utilities and IAM credentials, and update the all...
Allowlist
The Allowlist backend makes a list of active IP address grants available via the Knocknoc server ...
v6.0.0
We're excited to announce the release of Knocknoc 6, a major leap forward in attack surface reduc...
Microsoft Entra
Overview This integration is designed to manage named locations in Microsoft Azure Conditional A...
Welcome
Welcome to the Knocknoc Documentation. This is a living document of current Knocknoc information ...
Apache Webserver
Apache 2.4 and above have slightly different ACL syntax, so this page covers how you can use Knoc...
Agent Installation
For the admin who know what they need, and needs a fast way to get it, you can use this command t...
Fortigate Address Groups
Released for wider testing in version 1.0.34 of knocknoc agent, the FortiOS integration allows Kn...
SAML for the Admin Interface
SAML for the admin interface is the same as SAML for the user base with a few very small alterati...
SAML with OKTA
The following example assumes your Knocknoc instance is located at https://demo.knoc.cloud. Where...
Understanding Access Control
Backends A backend is a Knocknoc-supported technology that can connect to and update ACLs. Using...
Create Users
User creation varies depending on the authentication source in use. Local users will need to be c...
User Guide
Welcome to the Knocknoc User Guide. This will cover basic operations including logging in, loggin...
Nginx
Nginx support via script was added in knocknoc-agent version 1.0.30. This allows for flexible ACL...
Admins
Admins in Knocknoc can login to /admin on their Knocknoc server, however they can't be granted AC...
HAProxy tips and tricks
Checking to see if an ACL is present in HAProxy For when you aren't sure if the whole process is...
Time for NTP
NTP It's important that ALL the servers within the Knocknoc cluster and agents are synchronised ...
Knocknoc server behind HAProxy
Running Knocknoc behind HAProxy could be a great option for people with existing HAProxy deployme...
LDAP Troubleshooting tips
The Knocknoc server will need to be able to contact your LDAP server on port 389 or 636. This is ...